GMS-2020-600: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

November 13, 2020

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in shopware/shopware.

References

docs.shopware.com/en/shopware-5-en/security-updates/security-update-11-2020
github.com/advisories/GHSA-6gv9-7q4g-pmvm
github.com/shopware/shopware/security/advisories/GHSA-6gv9-7q4g-pmvm

Code Behaviors & Features

Detect and mitigate GMS-2020-600 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →